Homepage

org.lucee:lucee

Licenses: Unknown | LGPL-2.1
Published: 10 years ago Last updated: 19 days ago Latest version: 7.0.2.106

License

Unknown[7.2.0.36-ALPHA,);
LGPL-2.1[5.0.0.22,7.2.0.36-ALPHA);
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.lucee:lucee package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • C
Expired Pointer Dereference

[5.0.0.2,)
  • C
XML External Entity (XXE) Injection

[,5.3.7.59)[5.3.8.132-RC,5.3.12.1)[5.4.0.65-RC,5.4.3.2)
  • C
Remote Code Execution (RCE)

[5.3.6.53-RC,5.3.6.68)[5.3.7.34-RC,5.3.7.47)[5.3.5.92,5.3.5.96)

Package versions

264 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
7.2.0.45-ALPHA24 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.43-ALPHA23 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.42-ALPHA20 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.37-ALPHA18 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.36-ALPHA17 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.35-ALPHA6 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.34-ALPHA6 Mar, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.33-ALPHA25 Feb, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.32-ALPHA20 Feb, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.2.0.31-ALPHA20 Feb, 2026
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L